The schema for
distributed firewall configuration has a data structure containing global
properties that apply to the firewall and these sections:

■

layer3Sections which
contains Layer 3 rules (Array)

■

layer2Sections which
contains Layer 2 rules (Array)

Note

Configuring the distributed
firewall is possible only when you have the
vCloud AirDedicated
Cloud
subscription service.

A firewall section is the
smallest unit of configuration which can be updated independently. You can use
sections to group logical rules based on Applied To or for a specific use case.

For an overview of the
distributed firewall, see
Firewall for Trust Groups in
the
vCloud AirAdvanced
Networking Services Guide. [In the
vCloud AirAdvanced
Networking Services Guide, the distributed firewall feature is
referred to as the firewall for Trust Groups.]

In the
Advanced
Networking Services Web UI, Layer 3 (L3) rules appear on the
General tab and
Layer 2 (L2) rules appear on the
Ethernet tab.